Lucene search
K

41 matches found

CNNVD
CNNVD
added 2026/04/16 12:0 a.m.10 views

HGiga iSherlock 安全漏洞

HGiga iSherlock is a series of software products developed by the Chinese company HGiga. HGiga iSherlock has a security vulnerability, which stems from OS command injection, potentially allowing for the execution of arbitrary OS commands...

9.8CVSS6AI score0.02144EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/10/17 12:0 a.m.6 views

HGiga iSherlock 操作系统命令注入漏洞

HGiga iSherlock is a series of software products from China Henderson HGiga. HGiga iSherlock suffers from an operating system command injection vulnerability that originates from an unauthenticated, remote attacker who can inject arbitrary OS commands and execute them on the server, potentially...

9.8CVSS8.2AI score0.01824EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.12 views

EUVD-2023-41199

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.01126EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/07/14 12:0 a.m.4 views

HGiga iSherlock 安全漏洞

HGiga iSherlock is a series of software products from China Henderson HGiga. A security vulnerability exists in HGiga iSherlock that originates from OS command injection and could lead to remote code execution...

9.8CVSS8.3AI score0.0141EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/04/08 2:11 a.m.7 views

CVE-2025-3363 HGiga iSherlock - OS Command Injection

The web service of iSherlock from HGiga has an OS Command Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary OS commands and execute them on the server...

9.8CVSS8.3AI score0.0128EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/04/08 2:11 a.m.22 views

CVE-2025-3363 HGiga iSherlock - OS Command Injection

The web service of iSherlock from HGiga has an OS Command Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary OS commands and execute them on the server...

9.8CVSS0.0128EPSS
Exploits0References2
CVE
CVE
added 2025/04/08 2:11 a.m.61 views

CVE-2025-3363

CVE-2025-3363 affects HGiga’s iSherlock web service. The vulnerability is an OS command injection in the web service, allowing unauthenticated remote attackers to inject and execute arbitrary system commands on the server. Affected: iSherlock web service; root cause is improper handling of input ...

9.8CVSS8.3AI score0.0128EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/04/08 2:3 a.m.28 views

CVE-2025-3362 HGiga iSherlock - OS Command Injection

The web service of iSherlock from HGiga has an OS Command Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary OS commands and execute them on the server...

9.8CVSS0.0128EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/04/08 2:3 a.m.7 views

CVE-2025-3362 HGiga iSherlock - OS Command Injection

The web service of iSherlock from HGiga has an OS Command Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary OS commands and execute them on the server...

9.8CVSS8.3AI score0.0128EPSS
Exploits0References2
CVE
CVE
added 2025/04/08 2:3 a.m.54 views

CVE-2025-3362

CVE-2025-3362 concerns the web service of HGiga’s iSherlock. The available documents describe an OS Command Injection vulnerability that lets unauthenticated remote attackers inject and execute arbitrary OS commands on the server. The description is consistent across multiple sources (NVD/Red Hat...

9.8CVSS8.3AI score0.0128EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/04/08 2:0 a.m.29 views

CVE-2025-3361 HGiga iSherlock - OS Command Injection

The web service of iSherlock from HGiga has an OS Command Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary OS commands and execute them on the server...

9.8CVSS0.0128EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/04/08 12:0 a.m.3 views

HGiga iSherlock 操作系统命令注入漏洞

HGiga iSherlock is a series of software products from China Henderson HGiga. HGiga iSherlock suffers from an operating system command injection vulnerability that originates from OS command injection, which could allow a remote unauthorized attacker to execute arbitrary system commands...

9.8CVSS7.9AI score0.0128EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/04/08 12:0 a.m.6 views

HGiga iSherlock 操作系统命令注入漏洞

HGiga iSherlock is a series of software products from China Henderson HGiga. HGiga iSherlock suffers from an operating system command injection vulnerability that originates from OS command injection, which could allow a remote unauthorized attacker to execute arbitrary system commands...

9.8CVSS7.9AI score0.0128EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/04/08 12:0 a.m.4 views

HGiga iSherlock 操作系统命令注入漏洞

HGiga iSherlock is a series of software products from China Henderson HGiga. HGiga iSherlock suffers from an operating system command injection vulnerability that originates from OS command injection, which could allow a remote unauthorized attacker to execute arbitrary system commands...

9.8CVSS7.9AI score0.0128EPSS
Exploits0References3
OSV
OSV
added 2024/04/29 4:15 a.m.6 views

CVE-2024-4299

The system configuration interface of HGiga iSherlock including MailSherlock, SpamSherock, AuditSherlock fails to filter special characters in certain function parameters, allowing remote attackers with administrative privileges to exploit this vulnerability for Command Injection attacks, enablin...

7.2CVSS6AI score0.02087EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/04/29 3:15 a.m.24 views

CVE-2024-4299 HGiga iSherlock - Command Injection

The system configuration interface of HGiga iSherlock including MailSherlock, SpamSherock, AuditSherlock fails to filter special characters in certain function parameters, allowing remote attackers with administrative privileges to exploit this vulnerability for Command Injection attacks, enablin...

7.2CVSS7.6AI score0.02087EPSS
Exploits0References3
CVE
CVE
added 2024/04/29 3:15 a.m.69 views

CVE-2024-4299

CVE-2024-4299 affects HGiga iSherlock and its components (MailSherlock, SpamSherock, AuditSherlock). The root cause is improper filtering of special characters in certain function parameters within the system configuration interface, enabling a remote attacker with administrative privileges to pe...

7.2CVSS7.5AI score0.02087EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2024/04/29 3:15 a.m.20 views

CVE-2024-4299 HGiga iSherlock - Command Injection

The system configuration interface of HGiga iSherlock including MailSherlock, SpamSherock, AuditSherlock fails to filter special characters in certain function parameters, allowing remote attackers with administrative privileges to exploit this vulnerability for Command Injection attacks, enablin...

7.2CVSS7.6AI score0.02087EPSS
Exploits0References3
NVD
NVD
added 2024/04/29 3:15 a.m.18 views

CVE-2024-4297

The system configuration interface of HGiga iSherlock including MailSherlock, SpamSherlock, AuditSherlock fails to filter special characters in certain function parameters, allowing remote attackers with administrative privileges to exploit this vulnerability to download arbitrary system files...

4.9CVSS5.2AI score0.00674EPSS
Exploits0References1
NVD
NVD
added 2024/04/29 3:15 a.m.15 views

CVE-2024-4298

The email search interface of HGiga iSherlock including MailSherlock, SpamSherock, AuditSherlock fails to filter special characters in certain function parameters, allowing remote attackers with administrative privileges to exploit this vulnerability for Command Injection attacks, enabling...

7.2CVSS7.3AI score0.02087EPSS
Exploits0References3
Rows per page
Query Builder